Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2016-8937
Deferred
More InfoOfficial Page
Source-psirt@us.ibm.com
View Known Exploited Vulnerability (KEV) details
Published At-05 Oct, 2017 | 17:29
Updated At-20 Apr, 2025 | 01:37

The IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) default authentication protocol is vulnerable to a brute force attack due to disclosing too much information during authentication. An attacker could gain user or administrative access to the TSM server. IBM X-Force ID: 118750.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.09.8CRITICAL
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary2.05.0MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
CPE Matches
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1
cpe:2.3:a:ibm:tivoli_storage_manager:6.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.0
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.0:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.1
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.2
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.2:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.3
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.4
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.4:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.5
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.5:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.5.4
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.5.4:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.5.5
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.5.5:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.1.5.6
cpe:2.3:a:ibm:tivoli_storage_manager:6.1.5.6:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.2.0
cpe:2.3:a:ibm:tivoli_storage_manager:6.2.0:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.2.1
cpe:2.3:a:ibm:tivoli_storage_manager:6.2.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.2.2
cpe:2.3:a:ibm:tivoli_storage_manager:6.2.2:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.2.3
cpe:2.3:a:ibm:tivoli_storage_manager:6.2.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.2.4
cpe:2.3:a:ibm:tivoli_storage_manager:6.2.4:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3
cpe:2.3:a:ibm:tivoli_storage_manager:6.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.0.5
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.0.5:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.0.15
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.0.15:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.0.17
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.0.17:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.1
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.1.2
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.1.2:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.2.2
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.2.2:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.3
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.4
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.4:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.5
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.5:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.5.1
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.5.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.6
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.6:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.3.6.100
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.6.100:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.1
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.1.0
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.1.0:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.2
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.2:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.2.100
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.2.100:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.2.200
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.2.200:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.2.500
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.2.500:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.2.600
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.2.600:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.3
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>6.4.3.1
cpe:2.3:a:ibm:tivoli_storage_manager:6.4.3.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1
cpe:2.3:a:ibm:tivoli_storage_manager:7.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1..5.100
cpe:2.3:a:ibm:tivoli_storage_manager:7.1..5.100:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.0.1
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.0.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.0.2
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.0.2:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.0.3
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.0.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.1
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.1.1
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.1.1:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.1.2
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.1.2:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.1.100
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.1.100:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.1.200
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.1.200:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.1.300
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.1.300:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.3
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.3:*:*:*:*:*:*:*
IBM Corporation
ibm
>>tivoli_storage_manager>>7.1.3.000
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.3.000:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-287Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://www.ibm.com/support/docview.wss?uid=swg22007935psirt@us.ibm.com
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/118750psirt@us.ibm.com
VDB Entry
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=swg22007935af854a3a-2127-422b-91ae-364da2661108
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/118750af854a3a-2127-422b-91ae-364da2661108
VDB Entry
Vendor Advisory
Change History
0Changes found
Details not found